Hello!
Excuse me please, if this is the wrong list for my question! If I have
an AccessPoint working on layer 2 like the ALL0278, how are accounting
pakets generated and sent to the radius-server on port 1813. Which
application is responsible for generating those pakets?
Thank you!
Andreas
-
Hi,
Usually, the same interface you're using for management is used for
sending accounting packets, just like SNMP management.
On Cisco IOS this is configurable with the ip radius
source-interface command. When unspecified, the gateway interface's
IP address
is being used instead.
Regarding Which
Hello!
Excuse me please, if this is the wrong list for my question! If I have
an AccessPoint working on layer 2 like the ALL0278, how are accounting
pakets generated and sent to the radius-server on port 1813. Which
application is responsible for generating those pakets?
Thank you!
Hello!
Michael Schwartzkopff mi...@schwartzkopff.org wrote:
Hello!
Excuse me please, if this is the wrong list for my question! If I have
an AccessPoint working on layer 2 like the ALL0278, how are accounting
pakets generated and sent to the radius-server on port 1813. Which
Hello,
Well, there's probably a better way of doing it, but I'm not familiar with one.
The option that comes to my mind is using regular expressions.
Try replacing
Calling-Station-Id == 00:23:8B:7F:47:DD
with
Calling-Station-Id =~
Hello Joël,
I've adjusted some paths and other little things.
Freeradius is up
smsotpd is up
I've populated the berkeley db with my identifiant
don't use the smsotpd, use the rlm_perl which is a complete different
setup. The mininimal config you find in the README in the
From 'man unlang' I see this:
redundant-load-balance {
ldap1 # 50%, unless ldap2 is down, then 100%
ldap2 # 50%, unless ldap1 is down, then 100%
}
I clearly don't know what I'm doing when it comes to defining these modules.
If I have just ldap in there, it works.
Thoughts?
ldap ldap1 {
ldap config
}
ldap ldap2 {
ldap config
}
ldap ldap3 {
ldap config
}
-Arran
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
I get the following errors from radiusd -XC:
/etc/raddb/sites-enabled/campus-main[179]: Failed to load module ldap1.
/etc/raddb/sites-enabled/campus-main[179]: Failed to parse ldap1 entry.
/etc/raddb/sites-enabled/campus-main[70]: Errors parsing authorize section.
I tried copying
Hello,
I am being asked by my server load balancing vendor to send a
MONITOR health-check, which should respond with MONITOR back.
Does anyone know if Free Radius supports this option/ability?
Regards,
Ethan
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
Yup. That was it. Thanks to both of you who replied. :)
--J
-Original Message-
From: freeradius-users-bounces+mcnuttj=missouri@lists.freeradius.org
[mailto:freeradius-users-bounces+mcnuttj=missouri@lists.freeradius.org] On
Behalf Of Arran Cudbard-Bell
Sent: Friday, August
Okay new related question. I have these working:
ldap ldap1 { ... }
ldap ldap2 { ... }
ldap ldap3 { ... }
Is there an $INCLUDE syntax for modules (is it perhaps just $INCLUDE ./file)
that will load ./file in the current context that I can use so that ldap1,
ldap2, and ldap3 can share all of
I am trying to write my own Radius client using Java + Netty in a
non-blocking IO fashion.
Is there a sample code I can look at or reuse? Obviously, trying not to
reinvent the wheel here.
Also, any suggestion on RADIUS servers that I can install and test my
RADIUS client against?
Not
Hi,
I am being asked by my server load balancing vendor to send a
MONITOR health-check, which should respond with MONITOR back.
Does anyone know if Free Radius supports this option/ability?
how do they want this MONITOR to be sent back? as a reply message
or some VSA ? *anything* is pretty
Hi,
Okay new related question. I have these working:
ldap ldap1 { ... }
ldap ldap2 { ... }
ldap ldap3 { ... }
Is there an $INCLUDE syntax for modules (is it perhaps just $INCLUDE ./file)
that will load ./file in the current context that I can use so that ldap1,
ldap2, and ldap3 can
Hi,
Also, any suggestion on RADIUS servers that I can install and test my
RADIUS client against?
well, since this is the freeradius mailing list I think the
suggestion for server would be FreeRADIUS :-|
alan
-
List info/subscribe/unsubscribe? See
Alan,
Good question. Today I am using Radius to auth again a text file,
which I cut-and-pasted. I am a novice beyond that. I will ask for
clarification and will search around for reply message and VSA.
If you have any pointers, it would be much appreciated.
Thanks!
On Fri, Aug 24, 2012 at
Grrr...
This is probably a Samba issue - a known one? - but I can't seem to get AD
authentications to hit multiple DCs. Everything goes to the one listed in
/etc/samba/smb.conf (which may be a coincidence).
I set up several mschap instances like so:
mschap mschap1 { ...
ntlm_auth -s
Is there an advantage of using non-blocking IO in the RADIUS client
implementation?
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
al so wrote:
Is there an advantage of using non-blocking IO in the RADIUS client
implementation?
This list is about FreeRADIUS. It is not a support group for writing
your own RADIUS implementation.
Alan DeKok.
-
List info/subscribe/unsubscribe? See
McNutt, Justin M. wrote:
Grrr...
This is probably a Samba issue - a known one? - but I can't seem to get
AD authentications to hit multiple DCs. Everything goes to the one
listed in /etc/samba/smb.conf (which may be a coincidence).
That's how the NT protocols work, IIRC.
You need to
Ethan Whitt wrote:
Hello,
I am being asked by my server load balancing vendor to send a
MONITOR health-check, which should respond with MONITOR back.
Does anyone know if Free Radius supports this option/ability?
Ask the vendor if they do RADIUS. There's no MONITOR in RADIUS.
If they
al so wrote:
you will pay the price for sure..
Threats are rude.
You've not only been banned from the list, but your threats are now on
permanent record in the list archives. Anyone wanting to know who you
really are just has to search for your email address.
On Fri, Aug 24, 2012 at
Hi,
Authentication *works*, but all authentications go to the same DC (the one
specified in mschap2). Running radiusd -X shows that all mschap1/2/3
instances are being called, and no authentication *attempts* are being
sent to the other two domain controllers. (1 and 3 aren't
On 08/24/2012 08:11 PM, McNutt, Justin M. wrote:
Grrr...
This is probably a Samba issue - a known one? - but I can't seem to get
AD authentications to hit multiple DCs. Everything goes to the one
This is indeed a Samba issue, and unfortunately a hard one to fix.
ntlm_auth doesn't talk over
Alan D. and Alan B. are correct. Whatever this is, it isn't FreeRADIUS that
isn't behaving. Radiusd -XC shows that pretty conclusively. At this point, if
any of you are using Samba/ntlm_auth to handle the back-end authentication for
FreeRADIUS, your advice is welcome, but it's definitely a
The underlying problem is that I have four production RADIUS servers that all
seem to choose the same domain controller, which is not only a lot of load, but
it's a bad idea in terms of fault tolerance.
I may try just making each server choose a separate DC as its default, for
starters, which
Because there are so many files (pipes, actual files, etc.) whose locations
are hard-coded into winbind, the only way to even begin to try to run multiple
instances of winbind would be through chroot-ed setups, which would probably
mean that ntlm_auth would also have to run in the same
28 matches
Mail list logo
